Refer to the exhibit.

Which type of log is displayed?

• A.NetFlow
• B.sys
• C.proxy
• D.IDS

Comment: *

Name: *

Email: *

Verification: *

Which category relates to improper use or disclosure of PII data?

• A.legal
• B.compliance
• C.regulated
• D.contractual

Comment: *

Name: *

Email: *

Verification: *

A company encountered a breach on its web servers using IIS 7 5 Dunng the investigation, an engineer discovered that an attacker read and altered the data on a secure communication using TLS 1 2 and intercepted sensitive information by downgrading a connection to export-grade cryptography. The engineer must mitigate similar incidents in the future and ensure that clients and servers always negotiate with the most secure protocol versions and cryptographic parameters. Which action does the engineer recommend?

• A.Upgrade to TLS v1 3.
• B.Install the latest IIS version.
• C.Downgrade to TLS 1.1.
• D.Deploy an intrusion detection system

Comment: *

Name: *

Email: *

Verification: *

Drag and drop the elements from the left into the correct order for incident handling on the right.

Correct Answer:

Comment: *

Name: *

Email: *

Verification: *

What is a difference between SOAR and SIEM?

• A.SIEM receives information from a single platform and delivers it to a SOAR
• B.SIEM applications are used for threat and vulnerability management, but SOAR platforms are not
• C.SOAR platforms are used for threat and vulnerability management, but SIEM applications are not
• D.SOAR receives information from a single platform and delivers it to a SIEM

Comment: *

Name: *

Email: *

Verification: *